On the Verification of Security-Aware E-services